Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5624

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5624
Last Modified 31 Oct 2009 02:10:10
Published 17 Dec 2008 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5624

Summary

PHP 5 before 5.2.7 does not properly initialize the page_uid and page_gid global variables for use by the SAPI php_getuid function, which allows context-dependent attackers to bypass safe_mode restrictions via variable settings that are intended to be restricted to root, as demonstrated by a setting of /etc for the error_log variable.

Vulnerable Systems

Application

  • Php 5.0.0

  • Php 5.0.1

  • Php 5.0.2

  • Php 5.0.3

  • Php 5.0.4

  • Php 5.0.5

  • Php 5.1.0

  • Php 5.1.1

  • Php 5.1.2

  • Php 5.1.3

  • Php 5.1.4

  • Php 5.1.5

  • Php 5.1.6

  • Php 5.2.0

  • Php 5.2.1

  • Php 5.2.2

  • Php 5.2.3

  • Php 5.2.4

  • Php 5.2.5

  • Php 5.2.6

  • Php 5.2.7


References

XF - php-getuid-safemode-bypass(47318)

BID - 32688

BUGTRAQ - 20090302 rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl

BUGTRAQ - 20081206 SecurityReason: PHP 5.2.6 SAPI php_getuid() overload

CONFIRM - http://www.php.net/ChangeLog-5.php#5.2.7

MANDRIVA - MDVSA-2009:045

DEBIAN - DSA-1789

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0035

SREASONRES - 20081205 PHP 5.2.6 SAPI php_getuid() overload

SECUNIA - 35650

SECUNIA - 35003

OSVDB - 52207

OSVDB - 50483

HP - SSRT090192

HP - HPSBUX02431

HP - HPSBUX02465

HP - SSRT090085


Last Updated: 27 May 2016 10:49:59